Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 1 subscriber
  • Views 4621 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

IKE Preshared Secret as cleartext

ademmel@byterunner.de
Hi
I'd like to know whether its possible to get/read the IKE pre-shared secret
password in clear text.
I was able to find the relevant data/ config files but these passwords are encrypted

Some data of the used machine/software

ASG220
7.506 Astaro version
SSH connection possible

Best Regards


This thread was automatically locked due to age.
Parents
  • 0
    In 7.5xx, if you have respond-only 'Remote Gateways' and/or IPsec Remote Access, you only can have a single PSK for them and for L2TP over IPsec Remote Access.  If L2TP over IPsec isn't configured, try setting it up for PSK, leaving the key field empty. I don't know if that will work.  If not, make a backup, and then configure L2TP with a simple PSK that you will recognize.  Be sure to add your username to 'Allowed Users'.

    If you don't have the User Portal configured, you'll need to do that.  You should then be able to login to the User Portal and see the PSK on the 'Remote Access' tab.

    Did that work for you?

    Cheers - Bob
    PS If you are using a PSK for site-to-site, best practice recommends that certificates or RSA keys be used instead.
  • 0 in reply to BAlfson
    Hi Bob
    and forum

    I fear I did not ask the correct question

    I just want to know whether its possible to decrypt/get the PSK Passwords located in this file:
    ipsec.secrets within the path /var/sec/chroot-ipsec/etc
    Reason is very simple: Documentation and a possible replacement of the ASG 220, meaning I have to copy the config exactly to the new box

    Cheers
Reply
  • 0 in reply to BAlfson
    Hi Bob
    and forum

    I fear I did not ask the correct question

    I just want to know whether its possible to decrypt/get the PSK Passwords located in this file:
    ipsec.secrets within the path /var/sec/chroot-ipsec/etc
    Reason is very simple: Documentation and a possible replacement of the ASG 220, meaning I have to copy the config exactly to the new box

    Cheers
Children
No Data